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(54) Virtual wallet system 

(57) The present invention provides apparatus, 
methods and systems for information and financial 
banking. Apparatus of the present invention include vir- 
tual wallets which allow for information and financial 
banking including payment mechanisms; identity au- 
thentication mechanisms; personal information; and 
electronic artifacts. Methods and systems of the present 
invention include information and financial banking 
methods utilizing virtual wallets. A preferred virtual wal- 
let comprises a locally residing portion and a server re- 
siding portion. An interface is provided for communica- 
tion between the two portions of the wallet. 
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Description 

Cross-reference to Reiated Applications 

[0001] The present application claims priority under 
35 USC 119(e) from US Provisional Patent Application 
No. 60/065,291 entitled "DISTRIBUTED NETWORK 
BASED ELECTRONIC WALLET," filed November 12, 
1997 and from US Provisional Patent Application No. 
60/081 ,748 entitled "VIRTUAL WALLET SYSTEM" filed 
April 14, 1998. The disclosures of each referenced ap- 
plication is hereby incorporated herein by reference. 

Field of the Invention 

[0002] The present invention relates to apparatus, 
systems and methods for information and financial 
banking. Particular features of the present invention in- 
clude electronic wallets and computer and related elec- 
tronic apparatus based systems for the storage, retriev- 
al and management of personal information including 
personal financial information. An additional feature of 
the present invention is a system for a digitized signa- 
ture. 

Background 

[0003] With the explosion in popularity and utility of 
the internet and other electronic transaction mediums, 
the need for and dependence upon information in an 
electronic format is ever-increasing. The problem of 
storing, retrieving and managing all of a consumer's 
electronic data, however, has not yet been satisfactorily 
analyzed or solved. 

[0004] Further, the problem is not currently being ap- 
proached from the consumer's standpoint, but from the 
standpoint of the vendor looking to solve particular ven- 
dor needs. One form of product that deals with some of 
the above-stated needs are generally called electronic 
wallets. Typically, current electronic wallets are just an 
afterthought, however, used by vendors to enhance oth- 
er products. Generally, an electronic wallet is a software 
application, on a network or within a browser, that is part 
of a much larger program. Electronic wallets focus pri- 
marily upon the payment aspects of electronic com- 
merce. For example, electronic wallets comprise credit 
card account information and digital certificates that are 
used in authorizing electronic transactions that can be 
performed with the main product sold by the vendor. 
[0005] Additionally, electronic wallets are typically not 
universally interoperable. Information added to the elec- 
tronic wallet application of one vendor may not be able 
to be used by or accessed from other applications. In 
fact, a vendor providing a program may require that only 
the electronic wallet application associated with that 
program be used. Thus, a consumer is presented with 
the frustrating task of repeatedly entering and acquiring 
the data and information necessary to build the compo- 



nents of their electronic wallet. 
[0006] Further, because current electronic wallets are 
primarily designed as a part of a bigger application, they 
typically have narrow functionality. Current electronic 
5 wallets generally are only able to hold certain pre-des- 
ignated types of electronic information, such as credit 
card account information or digital certificates. Typically, 
applications utilizing current electronic wallets may only 
need a payment function, and thus the electronic wallet 
10 only provides this function. Generally, the functionality 
of current electronic wallets is driven by vendor, rather 
than consumer, needs. On the other hand, a consumer 
looking to integrate an electronic wallet into all facets of 
their life needs the ability to store, manage and retrieve 
is varied data from multiple data sources. Thus, there is a 
need for an electronic wallet that is able to work with 
electronic data that is chosen based on the electronic 
wallet owner's needs, not just the needs of a particular 
software vendor. 

[0007] Additionally, electronic wallets typically reside 
either locally with the owner, such as in a smart card or 
on a personal computer, or remotely such as on a server. 
There are drawbacks to both residences. 
[0008] Local residence has the advantage of com- 
plete control by the owner and not much resource allo- 
cation required by virtual wallet issuer. On the other 
hand, the local residence of an electronic wallet exposes 
the owner to the greatest risk of loss, such as if a smart 
card is lost or stolen or a personal computer hard drive 
crashes. Further, security, portability and interoperabil- 
ity issues arise when the residence is the personal com- 
puter. Networked computers may be hacked into, thus 
exposing their valuable information. Also, many home 
computers are not mobile, thus restricting the owner's 
ability to use the electronic wallet. Finally, local resi- 
dence in programs such as browsers generally restrict 
compatibility with other applications in an effort to re- 
strict the owner from conveniently utilizing competing 
browsers. Thus, local residence has some disadvantag- 
es. 

[0009] A remote electronic wallet typically resides on 
a server. This option advantageously provides superior 
information protection, as the server cannot be lost or 
stolen. Yet, residence on a server inconveniently re- 
quires the owner to establish some sort of network con- 
nection to access the wallet. Further, 'remotely access- 
ing the information brings about a problem in authenti- 
cating the identity of the individual requesting access. 
Passwords and Personal Identification Numbers (PINs) 
may be utilized, however, to increase the protection of 
the information. Thus, remote residence has some dis- 
advantages. 

[0010] Therefore, there exists a need to overcome 
some or all of the above-stated disadvantages of current 
electronic wallets and provide new apparatus, methods 
and systems for information banking. 
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Summary of the Invention 

[0011] The present invention provides apparatus, 
methods and systems for information and financial 
banking. Apparatus of the present invention include vir- 
tual wallets which allow for information and financial 
banking. Methods and systems of the present invention 
include information and financial banking methods uti- 
lizing virtual wallets. 

[001 2] As used herein, financial banking refers to the 
banking, investment and securities services traditionally 
offered by the financial services industry. Information 
banking or Information-based banking is an extension 
of the financial metaphor where precious information is 
stored in a secure place on behalf of the customer. In 
the present invention, information is treated in a similar 
manner as currency. Although, "information and value" 
are better analogs as are "data and currency" to each 
other, respectively. Examples of vaulted information can 
include insurance policies, legal documents, medical 
records, in addition to financial and credit histories. 
[0013] Under the present invention, a consumer's 
personal information can be viewed through the use of 
both theoretical and practical devices which character- 
ize the storage and value appreciation of "currency." For 
instance, the use of a vault to store currency can be used 
as a metaphor for storing and protecting information, 
while the investment of currency can be used as a met- 
aphor for generating value from the transactional use of 
that information. Thus, the present invention provides 
an individual with apparatus, systems and methods to 
vault and invest information. 

[0014] An embodiment of the present invention is a 
virtual wallet. Virtual wallets may be thought of as an 
electronic version of the physical metaphor, the conven- 
tional wallet. In one aspect, a virtual wallet of the present 
invention comprises software, possibly contained in 
special hardware, that acts as a container, for an owner/ 
user of the virtual wallet, for at least one of the following: 
payment mechanisms; identity authentication mecha- 
nisms; personal information; and electronic artifacts. A 
virtual wallet of the present invention may also be 
thought of as comprising an electronic system for the 
secure storage, retrieval and management of personal 
information. 

[001 5] As noted above, a virtual wallet of the present 
invention acts as a container for electronic objects, in- 
cluding but not limited to payment mechanisms, identity 
authentication mechanisms, personal information, elec- 
tronic artifacts, and the like of the owner/user of the wal- 
let. These electronic objects are preferably not limited 
to information from a single source, for example a finan- 
cial services institution. Instead, a virtual wallet of the 
present invention may be utilized to hold information 
from a variety of sources, including multiple financial in- 
stitutions, and personal information from a variety of 
sources in order to provide a user with more useful vir- 
tual wallet. Many users of conventional wallets use their 



wallet to contain multiple bank cards, credit cards, per- 
sonal information, notes, membership cards and the like 
from a variety of sources. In this regard, a virtual wallet 
of the present invention is preferably similar to a con- 
5 ventional wallet in terms of the types and kind of infor- 
mation contained in each wallet, similar to a convention- 
al wallet. 

[0016] According to the present invention, a virtual 
wallet may comprise one or more of the following fea- 

10 tures. A virtual wallet of the present invention may allow 
an owner to personalize its contents, enabling it to store 
any information the owner likes in a format selected by 
the owner. Also, an owner of the virtual wallet is able to 
access its contents where everthe owner may be, which 

15 along with the personalized format, maximizes the wal- 
let's convenience. Further, a virtual wallet of the present 
invention may allow an owner to link information stored 
in the wallet to other functions, which leverages the util- 
ity of the stored information and makes the virtual wallet 

20 interoperable with other applications. Additionally, a vir- 
tual wallet of the present invention may allow an owner 
to control access to and distribution of the information 
in the wallet, thereby giving the owner security and total 
control over his/her personal information. The virtual 

25 wallet systems of the present invention may advanta- 
geously feature the offering of rewards to a virtual wallet 
owner for distributing their information. A further feature 
of a virtual wallet of the present invention is that the wal- 
let may comprise a mechanism or mechanisms that 

30 eliminate the risk of loss of the information in the wallet 
by remotely storing and/or disabling the wallet contents. 
In this way, a virtual wallet of the present invention may 
advantageously comprise a trusted place to keep infor- 
mation and valuable financial items, as well as a con- 

35 venient way to move around information. 

[001 7] Payment mechanisms stored in the virtual wal- 
let may comprise bank account information, credit ac- 
count information, electronic currency, electronic 
checks and debit cards, for example. Identity authenti- 

40 cation mechanisms stored in the virtual wallet include 
personal identification information and authentication 
information. Personal identification information may 
comprise, for example, name, home address, work ad- 
dress, home phone, work phone, emergency contact in- 

45 formation, and biometric information. Authentication in- 
formation may comprise objects such as certificates, ac- 
cess keys and biometric information. Personal informa- 
tion and artifacts of the owner that are stored in the vir- 
tual wallet may comprise, for example, the personal 

50 identification information as stated above, other person- 
al phone numbers and addresses, appointments and re- 
minders, personal preferences and interests, loyalty 
credits, coupons, pictures, tokens and tickets. The 
above objects are just examples of some of the exhaus- 
ts tive capabilities of the virtual wallet. After reading this 
specification other examples will be obvious to those 
skilled in the art. 

[001 8] An advantage of a virtual wallet of the present 
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invention is that the virtual wallet may include informa- 
tion from a variety of sources. Further the information 
from different sources may interact. For example, in a 
virtual wallet of the present invention which includes a 
frequent flyer type credit card the wallet owner would be 
able to manage and track both credit card information 
and the added value function of managing and tracking 
frequent flyer mites. In addition, an eclectic wallet, such 
as a virtual wallet of the present invention, may allow 
consumers to add items that are not affiliated with the 
wallet issuer. Allowing any item to be added to the wallet 
is advantageous to the consumer and other application 
vendors. 

[0019] Another advantage of a virtual wallet of the 
present invention is that the virtual wallet may advanta- 
geously be a trusted place to keep information and val- 
uable financial items. Currently there are many founded 
and unfounded consumer fears regarding privacy and 
the safety of electronic transactions. If given a choice, 
it seems logical that consumers would rather store their 
sensitive information with someone that already has a 
reputation for trust and consumer advocacy than a sus- 
picious third party. In a world where information is in- 
creasingly gathered on consumers in secret, marketed, 
and sold, an explicit policy of privacy protection and 
safety is a powerful inducement to hold a virtual wallet 
from a financial institution. Further, there is not only val- 
ue in having consumer information, but value in moving 
it around as well. Also like money, information can be 
invested to provide - increasing returns. Information 
must also be protected, which give rise to the concepts 
of information vaults and safety deposit boxes. The cen- 
tral issue of privacy is turned into an opportunity, and is 
at the core of information banking. 
[0020] A further advantage of a virtual wallet of the 
present invention is that the virtual wallet provides a con- 
venient way to move information around. As explained 
in more detail in our copending application entitled "DIS- 
TRIBUTED NETWORK BASED ELECTRONIC WAL- 
LET" (Methods and Systems for Information Banking), 
filed the same day as the present application and as- 
signed serial number, , the disclosure of which being 
hereby incorporated herein by reference, a simple serv- 
ice of enormous convenience is to help consumers fill 
out forms from their personal data that resides in the 
information bank via their wallet. Whether a loan appli- 
cation, a site registration, a job application, once the in- 
formation is known, there is no reason that a consumer 
would have to type it in again, even though it might be 
for different reasons, or in a different order. A further fea- 
ture is that the owner of a virtual wallet may be able to 
have multiple answers for the same question, depend- 
ing on the persona that they wish to represent at the 
time (social vs. work, for example). 
[0021] A further advantage of a virtual wallet of the 
present invention is that the virtual wallet provides for 
selective loss, theft, and disaster recoverability. Many of 
the current wallet designs have deficiencies when the 



wallet is lost, stolen, or destroyed by disaster. It would 
be advantageous for a consumer to know that given one 
of these unfortunate mishaps, their life is not ruined. In 
an embodiment of a system of the present invention a 

5 new virtual wallet may be issued with no loss or corrup- 
tion of data. Should the wallet be stolen, the thief will 
have little opportunity to make use of the information, 
and the wallet keys can be disabled remotely without 
affecting the consumers account status or the items in 

10 the wallet. 

[0022] Another further advantage of a virtual wallet of 
the present invention is that the virtual wallet may allow 
for nomadic access. Current wallet designs confine one 
not only to the machine upon which they received their 

is wallet items (notably certificates), but to the particular 
browser that obtained them. This makes it very incon- 
venient to a consumer if they acquire a SET certificate 
at home and then wish to use it at work. The present 
invention provides a solution is nomadic and allows the 

20 wallet to be used wherever the consumer happens to be. 
[0023] A further advantage of a virtual wallet of the 
present invention is that the virtual wallet may be a shop- 
ping aid. One result of having consumer information is 
the ability to infer what they are interested in. The virtual 

25 wallet system of the present invention may allow the 
wallet issuer the opportunity to become a trusted elec- 
tronic broker that will help consumers find what they 
want to buy. A further consequence is the ability to also 
become the consumer's electronic valet and filter out 

30 unwanted spam by knowing what they are not interested 
in. By recognizing that payment is only a part of com- 
merce, and addressing other parts of commerce a vir- 
tual wallet of the present invention provides additional 
advantages to both a consumer and a wallet issuer. 

3S [0024] A still further advantage of a virtual wallet of 
the present invention is that the virtual wallet may be an 
information organizer. In this regard, the virtual wallet of 
the present invention provides a convenient and useful 
way to manage and organize personal information. Fur- 

40 ther, the personal Information systems of the virtual wal- 
let of the present invention may advantageously form 
part of the protected information bank. 
[0025] Another still further advantage of a virtual wal- 
let of the present invention is that the virtual wallet may 

45 generate financial and non-financial rewards. In an em- 
bodiment of the present invention, part of a wallet pack- 
age could be a rewards feature based upon several pos- 
sible strategies. The first strategy makes discounts and 
special offers available to holders of the wallets. This is 

so a familiar technique to financial service providers and is 
not a radical departure from what is already done today 
with cards and membership programs. Typically, how- 
ever, the discounts and offers are of a broadcast nature 
and may not necessarily match a given consumers real 

55 interests. Hence, some cost of delivering the discount 
and offer information is wasted on consumers that are 
not interested. 

[0026] A bolder strategy, made possible by the virtual 
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wallet systems of the present invention, encourages 
consumers to make their demographics and interests 
available by pairing their information account (the stuff 
in their wallet) with a financial account. Initially, consum- 
ers are instructed to specify those things they are inter- s 
ested in, and an electronic shopping agent will report 
back to them on what it finds. The consumer interests 
are then categorized into profiles, less their identities, 
and put into a database. Instead of selling profiled mail- 
ing lists, which is perceived in a negative light by con- 
sumers, marketers would pay to have an electronic ad- 
vertisement delivered to virtual wallet users of a given 
profile. 

[0027] The information bank behind the wallet pre- 
serves the consumer's identity, while making valuable 
information available to marketers. These types of mar- 
keting responses are perceived as less of an intrusion 
to privacy since the consumer has indicated their inter- 
est by submitting a search for an item. 
[0028] The value proposition of the wallet is that a por- 
tion of the money received from the marketers for deliv- 
ery is passed on to the consumer into their associated 
financial account. In effect, the marketers are paying a 
consumer for their time to consider an offer. Because 
the marketing messages are screened through the con- 
sumer's individual profiles, the consumer will not be re- 
ceiving anything that is grossly dissonant from their stat- 
ed interests. Marketers will be able to get an aggregate 
count of how many individuals match the requested pro- 
file and a price quotation prior to an investment in deliv- 
ering the ad. This allows them to refine their profile def- 
inition and tailor their marketing messages prior to large 
outlays of cash. This is clearly a win-win scenario for 
both the consumers and the marketers. The wallet in- 
terface metaphor can be used to help, the consumer 
track their returned value, and to enable them to move 
their information in and out of the "vault" area to the "in- 
formation investment' area where the information is 
made available to profile searches. 
[0029] A variant of this concept recompenses the con- 
sumers with non-monetary rewards such as loyalty 
credits. Loyalty credits can legitimately have a higher 
perceived value than a cash equivalent. Currently, loy- 
alty programs of high demand (e.g. frequent flyer miles) 
are typically limited to large companies, and the rewards 
are not very liquid. In addition to receiving loyalty credits 
in return for viewing marketing messages, a virtual wal- 
let provider could also offer a brokerage and exchange 
service to "swap" various loyalty credits for others. This 
is consistent with increasing the velocity of exchange 
philosophy and has an overall beneficial impact on the 
aggregate of loyalty programs. Suppliers benefit be- 
cause they can relieve their debt faster. The "loyalty" ob- 
jective is still met since consumers will join loyalty pro- 
grams for products they intend to buy frequently any- 
way. The overall value becomes higher to a consumer 
because their flexibility of what they can exchange the 
credits for has increased, and the potential loss of 



earned credits due to expiration dates is reduced. An- 
other clear win-win for consumers and marketers via the 
same mechanism. 

[0030] Further details relating to the present invention 
are set forth in the appended figures and the following 
description. 

Brief Description of the Drawings 

[0031] Figure 1 is a schematic representation of an 
embodiment of a virtual wallet system of the present in- 
vention. 

[0032] Figure 2 is another schematic representation 
of an embodiment of a virtual wallet system of the 
present invention. 

[0033] Figure 3 is a schematic representation of an 
embodiment of an electronic wallet architecture accord- 
ing to the present invention. 

[0034] Figure 4 is another schematic representation 
of an embodiment of an electronic wallet architecture 
according to the present invention. 
[0035] Figure 5 is a flowchart of an intermediated 
transaction function of the present invention. 
[0036] Figure 6 is a flowchart of a wallet open for pay- 
ment function of the present invention. 
[0037] Figure 7 is a flowchart of a publish public key 
function of the present invention. 
[0038] Figure 8 is a flowchart of a purchase with cou- 
pons function of the present invention. 
[0039] Figure 9 is a flowchart of a ticket purchase and 
use function of the present invention. 
[0040] Figure 10 is a schematic diagram of the con- 
tents of an example virtual wallet of the present inven- 
tion. 

[0041] Figure 11 is a diagram of an example virtual 
wallet system of the present invention. 
[0042] Figure 12 is a schematic representation of 
JAVA API's which may be utilized in the example virtual 
wallet system of the present invention. 

Detailed Description of the Invention 

[0043] The present invention provides apparatus, 
systems and methods that allow an individual to man- 
age their financial and personal information. An embod- 
iment of the present invention is referred to herein as a 
virtual wallet. The present invention includes virtual wal- 
lets, virtual wallet systems and methods utilizing virtual 
wallets. 

[0044] Embodiments and features of the present in- 
vention are described in detail with reference to the ap- 
pended Figures. 

[0045] Figure depicts a possible embodiment of the 
present invention. Referring to Figure 1 according to the 
present invention a virtual wallet may comprise a hybrid 
between a wallet that resides locally with the owner, 2 
and a wallet that resides remotely, such as with a server, 
4. A virtual wallet system further includes an interface, 
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6 between the local function, 2 and the server, 4. The 
virtual wallet system may interact with the outside world, 
8 through local wallet 2 and/or the server 4. The hybrid 
virtual wallet combines the portability, owner control and 
minimized issuer resource aspects of a local wallet with 
the security and storage capability of a remote wallet. 
Thus, the hybrid virtual wallet advantageously optimizes 
the advantages of each type of residence. In the follow- 
ing discussion, the local residence or portion of the wal- 
let may be referred to by these names or as a 'client 0 . 
The remote portion of the wallet may be referred to by 
this name or as a "server". 

[0046] The local residence of the wallet may com- 
prise, for example, the owner's personal computer, 
smart card, or other similar device that enables the wal- 
let to be utilized off-line. Typically, the local aspect of the 
virtual wallet, the local contents, 3 comprises data and 
information determined by the wallet owner to be impor- 
tant, while the entire wallet is contained remotely. For 
example, the local aspect of the virtual wallet may com- 
prise stored value purses, important personal and au- 
thentication information, and account information ena- 
bling the local aspect of the virtual wallet to emulate any 
of the functionality contained within the entire wallet. 
The owner advantageously is able to define and have 
access to the most important aspects of the wallet in a 
convenient package that can be remotely utilized. Pref- 
erably, the local aspect of the wallet is mirrored on the 
remote wallet or server, thus protecting the information 
in case the card has to be replaced. Additionally, the lo- 
cal aspect of the wallet comprises a certificate or other 
similar authentication instrument that allows the owner 
to remotely gain access to the entire virtual wallet on the 
server. Thus, the owner can still have access to all of 
the wallet functionality at sites where the local aspect of 
the wallet can be linked to the server. 
[0047] The remote aspect of the virtual wallet advan- 
tageously provides security for all of the information in 
the wallet. The server also provides greater storage ca- 
pacity for information compared to a smart card or per- 
sonal computer, for example. The contents 5, of the re- 
mote aspect of the virtual wallet comprises the entire 
wallet, which may be in part mirrored in a local aspect 
of the virtual wallet. The remote aspect of the virtual wal- 
let, however, may not completely mirror cash and cash- 
like objects in the local aspect of the wallet due to off- 
line transactions. The present invention, however, up- 
dates the remote aspect of the virtual wallet with the lat- 
est information from the local aspect of the virtual wallet 
when the local wallet is on-line. Additionally, according 
to an advantageous feature of the present invention, the 
remote aspect of the virtual wallet provides privacy pro- 
tection in transactions by replacing the owner's identity 
and address, for example, with secret information 
known only to the wallet server. This feature may be uti- 
lized, for example, when marketers pay for information 
regarding various owner habits, preferences, etc., to 
give away the information without compromising the 



identity of the owner. Thus, the remote aspect of the vir- 
tual wallet provides security and storage capability. 
[0048] Thus, this embodiment of a virtual wallet of the 
present invention synergistically combines the most 
s beneficial aspects of local and remote residence into a 
single virtual wallet. The local aspect of the wallet is 
used for convenience and off-line transactions, while the 
remote aspect of the wallet provides for loss and theft 
protection. 

10 [0049] Figure 2 also provides a schematic depiction 
of a hybrid virtual wallet embodiment of the present in- 
vention and a method for using same. As shown in Fig- 
ure 2, a virtual wallet system may comprise a personal 
storage device 12, an institutional server 14 and an in- 

is terface device 16. The personal storage device 12 and 
institutional server may each interact with the outside 
world, 18. 

[0050] The personal storage device may comprise a 
smart card, personal digital assistant (PDA) or a mem* 

20 ory chip device. The personal storage device may also 
comprise a computer's hard drive or other computer 
based storage. The preferred embodiment of a personal 
storage device, whether handheld and easily transport- 
able, or a portion of a computer's hard drive, will depend 

25 on the preferences of the user of the wallet. 

[0051] The personal storage device may include, but 
is not limited to, one or more of the following types of 
data: private keys; public keys; account numbers; elec- 
tronic currency (e-currency); coupons; tokens; tickets; 

30 loyalty credits and the like. The functions of the personal 
storage device may include one or more of the following: 
authenticating; digital signing; or paying. These data 
types and functions are described in more detail in the 
following sections. When the wallet is on a smart card, 

35 the consumer becomes truly "nomadic" plug in their 
card wherever they go and have their wallet (and book- 
marks!) available all the time. However, there will need 
to be capabilities built into the clients (and possibly serv- 
ers) that permit this roaming feature. As the card be- 

40 comes increasingly important to the consumer, means 
to replace lost or stolen cards must be devebped just 
like replacement processes for credit cards, licenses, 
and other physical ID cards. This will be part of the serv- 
ice offered by the truly useful, trusted wallet provider 

45 [0052] The interface device need not include data but 
will generally include at least one of the following func- 
tions: user interface interacting; communicating; or pub- 
lic encryption. As will be understood from the foregoing 
discussion, where the personal storage device compris- 

50 es a computer's hard disk and the interface device com- 
prises the same computer, the interface device may in- 
clude the data and functions of the personal storage de- 
vice. 

[0053] The institutional server may include the same 
55 data as the personal storage device and may further in- 
clude one or more of the following types of data: certif- 
icates; names; addresses; history logs and the like. The 
institutional server preferably acts as backup means for 
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the persona! storage device and therefore may include 
back-up copies of the data contained on the personal 
storage device. The institutional server may include one 
or more of the following functions: authenticating; digital 
signing; paying; logging; reporting and communicating. 
These functions and the foregoing data types are de- 
scribed in more detail in the following sections. 
[0054] As shown in Figure 2 by the large arrow, per- 
sonal storage device 12, interface device 16 and insti- 
tutional server 14 may communicate via secure inter- 
face interactions 13. In this regard, the interface device 
provides an interface between the personal storage de- 
vice 12 and the institutional server 14. Personal storage 
device 12 may communicate with outside world 18 for 
purpose of point of sale transactions 15. These trans- 
actions include transactions involving the transfer of cur- 
rency (e.g. a purchase) and also include transactions 
involving the transfer of personal information. The insti- 
tutional server portion of the virtual wallet 14 may com- 
municate with outside world 18 via intermediated inter- 
net transactions 1 7. These transactions may be handled 
in a manner similar to current internet based transac- 
tions and involve both the transfer of financial informa- 
tion (financial banking) or personal information (informa- 
tion banking). 

[0055] From a technology point of view, virtual wallets 
include software programs that will reside on a smart- 
card, client PC/PDA/STB and/or on a server. These pro- 
grams implement at least four components: 

User Interface (Ul). Interaction between the wallet 
and its the consumer will be controlled by a user 
interface component. 

Behavior. Behaviors will be things like "pay", "add 
payment type", "edit personal information," etc. 
These will be behaviors that are available to wallet 
owners through the UL It will represent the capabil- 
ities of the wallet. 

Protocols. Protocols include SET, Visa Cash, Mon- 
dex, OPS (see below). These will be definitions of 
how the wallet needs to interact with other systems 
and servers. Various system implementers will pro- 
vide modules that implement these protocols. 

Content. Contents are consumer's specific pay- 
ment accounts (credit cards, debit cards, cash) and 
information. This data will be unique to each con- 
sumer. 

[0056] Figure 3 depicts a possible architecture for a 
virtual wallet system of the present invention 271. As 
previously noted, the concept of an electronic wallet 
means many things to many people. One version could 
be a pocket sized computer with a snap shot-size color 
screen that will be used in place of many essentials that 
consumers carry around with them today such as mon- 



ey, keys, identification, credit cards, tickets, as well as 
items that provide the consumer with mobile information 
and communications such as a watch, newspapers, cal- 
culator, portable telephone, pager, etc. In this embodi- 

5 ment, the wallet 271 is a physical thing that is carried in 
the pocket. Because of its electronic nature, it can add 
functionality that the conventional wallet can not per- 
form. However, consumer concerns about this type of 
device make it impractical. Although it is technically pos- 

io sible to back up the contents of the electronic device, 
the reality is that consumers would probably be at least 
as irresponsible with such a device as they are currently 
with their own data. Further, to the extent that such a 
wallet interfaces with providers of the wallet or others, 

is there is a security concern in that information about the 
consumer could be used by others to make a profit and 
not let the consumer know about it. Thus, extension of 
the physical wallet, especially those offered by third par- 
ty software or hardware vendors make rapid adoption 

20 unlikely. 

[0057] At the other end of the spectrum is the totally 
virtual wallet. It is not a physical device, but a set of ap- 
plications on a server somewhere. The major disadvan- 
tage of this approach is that all transactions have to be 
25 "on-line" or connected to a server. This could result in 
more expensive and/or less convenient use. Another is- 
sue is security. 

[0058] A hybrid approach, and that preferred in ac- 
cordance with the system of the invention, is to put some 

30 data and applications on a physical device and some on 
a server. A smart card is ideally suited for this type of 
application since it makes the most sense to put the se- 
curity and access functions on the card, and to put the 
volume of data and applications on the server. Further, 

35 those transactions that would be too expensive to have 
on-line, such as small amounts of electronic cash trans- 
actions, also makes sense to have on a such a smart- 
card. Thus, as shown in Figure 3, the electronic wallet 
271 in one embodiment is made up of an e-cash appli- 

40 cations container 273, an electronic cash application 
manager 275, a use or authentication module 277, a key 
to application manager 281 , a key ring applications con- 
tainer 283, and external applications interoperability API 
(applications program interface) 279, and a user appli- 

45 cation organizer and manager 285. 

[0059] The e-cash applications container 273, as the 
name implies, is storage for e-cash applications. In or- 
der to gain critical mass, more than one type of e-cash 
is supported. The storage in container 273 is sufficiently 

50 generic to only record each of its members as being 
some form of e-cash and the actual "object" in the con- 
tainer 273 is a "connector" to the real e-cash application. 
The programming provides that the e-cash application 
can be located and started. The e-cash manager 275 is 

55 software that provides how to add e-cash applications 
and use them in a generic manner. The user authenti- 
cation module 277 can be replaceable to allow for 
growth in the security and authentication technologies. 



7 



13 



EP 0 917 120 A2 



14 



Prior to implementation of smart cards, it could be soft- 
ware that asks for an account number and personal 
identification number, but with current technology, it can 
be implemented using the card and a server, using au- 
thentication technology implemented today For future 
purposes, alternative security and authentication tech- 
nologies might use biometrics, etc. 
[0060] The key to application manager 281 serves to 
manage non-cash applications in the wallet such as 
credit, debit, e-checks, identification, facilities access 
and other applications. This is the software that main- 
tains the contents of the key ring application container 
283. The key-ring container 283 holds the connectors 
to server applications. The contents are managed and 
maintained by the key to application manager 281 pre- 
viously described. Even as smart cards become more 
commonly available, it is believed that they will not be 
sufficiently large to actually hold the applications. In- 
stead, they will hold "connectors" to the applications that 
reside on a server. The most important aspect of a "con- 
nector" is a key or certificate that helps identify an au- 
thorized user of the application. The "key ring" then is a 
container of keys. They are not like the "real" keys, how- 
ever, as further illustrated by Figure 4 hereof. 
[0061] More specifically, Figure 4 illustrates a wallet 
and application access scheme 301. In this figure, the 
concept of an access device provider, wallet issuer and 
application provider have all been separated. As illus- 
trated in Figure 4, a consumer can use an access device 
303 to access their information 305. The access device 
303 has been provided at point of sale, or point of con- 
tact by some party. The wallet then uses the access de- 
vice 303 and the access device server 307 connection 
to the network to contact the wallet issuer server 309. 
The consumer then identifies the appropriate applica- 
tion by their own description. The description is associ- 
ated to an application key proxy 311 that is sent to the 
application provider server 313. 
[0062] In the scheme 301 described, the consumer 
can access their information via a device 303 provided 
at point of sale, or point of contact by some party. Since 
this party will want some presence other than the device 
303, some "real estate" is set aside in the presentation 
interface for their content. The wallet 271 uses the de- 
vice 303 and the devices server 307 connection to the 
network 301 to contact the wallet issuer server 309. The 
consumer, as noted previously, identifies the appropri- 
ate application by their own description. The description 
is associated to an application key proxy 311 that is sent 
to an issuer server 309. The issuer server 309 authen- 
ticates the user and then looks up the location of the 
application and its real and actual key to be used for 
access to it. It then connects the consumer to the appli- 
cation at the application server 31 3 and serves as a se- 
cure conduit. 

[0063] As may be appreciated, proxies are used in- 
stead of actual keys in case the card is lost or stolen. In 
this manner, the coordination with many unaffiliated or- 



ganizations to issue new keys is eliminated. The issuer 
simply issues a new card with new proxies on the card. 
[0064] A number of different features of the present 
invention, as disclosed in the appended Figures, will 

5 now be discussed. In all of the flow charts, each com- 
ponent of the system is identified along the top horizon- 
tal axis, and the description of each step is identified 
along the left vertical axis. Further, the middle of the 
chart comprises arrows, and sometimes wording, rep- 

10 resenting interaction among the system components 
and the flow of information. A double-headed arrow rep- 
resents a two way flow of dialogue, typically with more 
detailed dialogue (not shown) occurring at a lower level. 
[0065] The steps set forth in the flowcharts are per- 

1£ formed by a user of the virtual wallet or implemented in 
computer software residing on the personal storage de- 
vice, the interface or the institutional server. 

Intermediated Transaction 

20 

[0066] Referring to Fig. 5, one feature of the present 
invention utilizes a wallet server to supervise a transac- 
tion between the virtual wallet and a merchant. For ex- 
ample, the wallet owner may be shopping at a merchant 
zs location. The wallet owner decides to purchase an item 
utilizing the virtual wallet. Utilizing the virtual wallet, the 
owner sends a purchase request to the merchant. A 
merchant device, such as a merchant server, receives 
the purchase request, verifies the item that the wallet 
30 owner wishes to purchase and sends a payment request 
to the wallet owner through the wallet server. The re- 
quests may be sent in the Multimedia Internet Mail Ex- 
tensions (MIME) format, for example. The wallet server 
then forwards the request in the form of an invoice to 
3S the wallet interface, such as a browser or other similar 
application. The invoice is a package of information 
comprising, for example, the purchase order informa- 
tion, and the accepted payment mechanisms. Addition- 
ally, if this is an internet transaction, the invoice may also 
40 contain the URL to the acquirer server, for example. Up- 
on receiving the invoice, the wallet owner views the in- 
voice, selects the method of payment, and signs the in- 
voice receipt. The signed receipt and the selected pay- 
ment mechanism go back to the wallet server, which in- 
45 termediates the payment transaction. For example, the 
wallet server may utilize the Secure Electronic Transac- 
tion (SET) protocol, or any other similar transaction pro- 
tocol, to exchange the payment information such as the 
wallet owner's account number, the amount of the pay- 
so ment, and the authorizations. Then, the final authoriza- 
tion or rejection is passed through to the wallet owner. 
Finally, the fulfillment mechanism (not shown) starts and 
must be received by the wallet owner to complete the 
transaction. 

55 

Wallet Open for Payment 

[0067] Figure 6 represents the feature where the wal- 
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let is opened for payment and a payment request is re- 
ceived by the wallet server. The payment request may 
be in any format, such as the SET initiation MIME, JCM 
(JAVA Commerce Message), and Open Trading Proto- 
col (OTP) for example. When the wallet opens, the wal- 
let owner or user must authenticate themself to the wal- 
let so that the wallet knows the correct user is using the 
wallet interface. The user may authenticate themself uti- 
lizing biometric information, PIN and password, or other 
similar methods. Once the wallet authenticates the user, 
then the wallet and wallet server must mutually authen- 
ticate each other. When the various authentication's are 
complete, the invoice and payment mechanisms deriv- 
ing from the payment request are presented to the wallet 
owner through the wallet server. The wallet owner views 
the information through the display of the wallet inter- 
face and sends the selected payment vehicle back 
through the wallet server. 

[0068] Next, the wallet server advantageously pro- 
vides the wallet owner with a special payment authori- 
zation object for signature by the wallet owner. Tradi- 
tionally, digital signatures are automatically attached to 
documents once a payment has been approved. In this 
optional feature of the present invention, however, the 
wallet owner goes through a step to consciously sign 
the invoice or receipt. Methods may be provided to cap- 
ture authorization such as a digital signature. 
[0069] Finally, the signed document is handled by the 
wallet server. The wallet server initiates and intermedi- 
ates the payment transaction utilizing the appropriate 
protocol, such as SET or other similar protocols. 
[0070] As discussed above, the method of formatting 
and transmitting the digital document may vary. For ex- 
ample, one preferred format is the extendible Markup 
Language (XML). This is a meta language used to de- 
scribe the formats of other languages. It is a way to or- 
ganize the format of data in a structured way that can 
be passed from computer to computer. Similarly, the for- 
mat may be in Java in the form of an object, or the format 
may be any other relatively standard way of encapsu- 
lating state and behavior. 

Publish Public Key 

[0071] Referring to Figure 7, another advantageous 
feature of the present invention is the ability to generate, 
publish and index a public/private key pair. An advan- 
tage of a virtual wallet system of the present invention 
is that the local aspect may generate a public/private 
key pair. The public key may be published to the server 
of the wallet, while the private key remains local. This 
feature helps preserve non-repudiation as the private 
key is solely in possession of the consumer. In a pre- 
ferred embodiment, wherein the local residence (client) 
is a smart card, the private key never leaves the smart 
card. 

[0072] This publish public key feature allows a party 
relying on a signed document to go straight to the issuer 



of a key to check it's validity, as opposed to having to 
check a third party's certificate revocation list (CRL). In 
this case, the wallet owner asks the wallet to generate 
a new key pair. Alternatively, this may also be a piece 
5 of software that is requested. But, in either case there 
may be multiple active key pairs. The chip device, after 
it's done the processing, returns the public key and re- 
quests from the wallet server an index to associate with 
it. The wallet server forwards that public key and the in- 
fo dex request to the public key directory. This assumes 
that there may be two different entities -- the wallet serv- 
er and the public key directory, but they may be under 
the same legal entity. The public key directory publishes 
the key and, according to a unique feature of the present 
is invention, returns the index to this key to the wallet serv- 
er. The wallet server, in turn, returns a copy to the chip 
device. The chip device then acknowledges the publish- 
ing of the key and the receipt of the index to the wallet 
owner. 

20 [0073] Since the index may be some incomprehensi- 
ble set of numbers, the present invention advanta- 
geously allows the wallet owner to associate a "friendly 
name" or nickname with the index. Since the wallet own- 
er may have multiple signing keys, for different personas 

25 or different relationships, it is important for the owner to 
be able to create a memorable name for each key index. 
Finally, the chip device securely stores the index with 
the key pair for future use. 



[0074] In operation a signature requester, such as a 
restaurant, wants the wallet owner to sign a document, 
such as a receipt. The requester initiates the dialogue 
and sends a document to the wallet. The wallet desig- 
nates the document as a signature document for recog- 
nition by the software. The wallet server sends the sig- 
nature document to the wallet interface when it comes 
on line, thereby supporting both synchronous and asyn- 
chronous dialogs. The wallet interface displays the sig- 
nature document and abstract to the wallet owner for 
signing. The owner then picks one of their signature key 
nicknames, or in other words the persona that they are 
signing with, and they sign the document. This feature 
of the present invention advantageously manages mul- 
tiple signature keys. 

Purchase With Coupons 

[0075] This feature of the present invention, referring 
to Figure 8, advantageously provides a coupon manag- 
er system that collects coupons for the wallet owner and 
compares and selects appropriate coupons when the 
wallet owner is presented with a payment request in- 
voice. This system beneficially allows the owner, at one 
time, to select and collectively redeem all coupons that 
apply to a particular transaction. 
[0076] In this case, the wallet owner shops at a mer- 
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chant and after indicating items to purchase, the mer- 
chant server sends a payment request and a list of ac- 
cepted payment vehicles to the wallet owner. The pay- 
ment request also comprises an invoice, and an invoice 
object knows the items and product numbers contained 
in the invoice. The invoice object delivers that list to the 
coupon manager, which analyzes the invoice and com- 
pares it to a coupon list that contains the coupons held 
by the wallet owner. After finding matches, the coupon 
manager prepares a list of applicable coupons and 
presents this list to the wallet owner. The list is preferably 
presented all at once, but each applicable coupon may 
alternatively be presented one at a time. The owner in- 
dicates which coupons to use, and the coupon manager 
sends the list of indicated coupons back to the merchant 
server as a discount request. Based on the coupons re- 
ceived, the merchant updates the invoice and the mer- 
chant server sends an update payment request back to 
the owner. The wallet owner selects a payment mecha- 
nism and signs the payment request, which is forwarded 
to the merchant. Finally, the merchant authorizes the 
payment via conventional means, and notifies the owner 
of the result of the authorization. 
[0077] Additionally, the coupon manager may sug- 
gest alternative purchases to the owner based on hav- 
ing coupons for items that are substitutes or equivalents 
to the items listed on the invoice. Further, the merchant 
may provide a coupon presentment option to the owner 
by offering coupons for equivalent or substitute items, 
or even the initially indicated items. In either case, the 
coupon manager presents these options to the owner 
for approval. 

Ticket Purchase and Use 

[0078] Referring to Figure 9, yet another feature of the 
present invention allows the wallet owner to purchase, 
store and use tickets, tokens or other similar transfera- 
ble items of value. The space between lines in the chart 
represent the passage of time. I n this case, for example, 
the owner interacts with a theater to purchase a ticket 
to a show. The theater server requests payment from 
the owner, who authorizes the payment. Once the theat- 
er verifies the payment, the theater server sends the 
ticket to the wallet server, which stores the ticket for later 
use. The ticket comprises a migratory object, which is 
able to be transferred from one location to another. 
When the owner decides that they want the ticket stored 
locally, the owner makes a request to the wallet server 
for local storage of the ticket. The ticket object is then 
transferred to the secure chip device, such as in a smart 
card. Upon arriving at the theater, the theater server re- 
quests a ticket and the owner plugs the chip device into 
the wallet interface to access the ticket, or alternatively, 
into a theater interface. The owner is given access to 
the theater once the ticket is then transferred to the 
theater server after a mutual authentication process. 
[0079] Additional aspects of the present invention, its 



features, advantages and operation are illustrated in the 
following example. 

Example 

[0080] An example of an embodiment of a virtual wal- 
let, and its use in commerce are described below and 
with reference to Figures 10 and 11 . 
[0081] The hybrid wallet is a combination of a smart 
card physically in possession of the user and a server 
based wallet. The wallet then has three distinct applica- 
tions that allow it function both off-line and on-line for 
appropriate tasks. 

[0082] The first area would be a stored value area or 
purse. This area would be able to dispense and track 
electronic cash off-line and would be re-loadable on- 
line. 

[0083] The second area would essentially be equiva- 
lent to the magnetic strip on current cards, but allow the 
physical card to become a proxy for any of the cards 
contained in the wallet. This would allow purchases via 
the existing channels when the user is in physical stores. 
The account information would be mirrored on the serv- 
er in case the card had to be replaced. 
[0084] The third area represents the 'rest" of the elec- 
tronic wallet and is simply a entitlement that allows the 
holder to gain access to the wallet on the server. Such 
entitlements could be the form of crytograms, certifi- 
cates, signed indica and the tike. This provides the abil- 
ity to have many wallet items when the actual resources 
of the cards are quite limited. Additionally, communica- 
tion occurs between high-speed servers at higher band- 
widths than would normally occur between a consum- 
er's machine and a server, thus improving the overall 
performance. 

[0085] Furthermore, should the card be lost, stolen, 
or destroyed, a new entitlement is easily reissued while 
the old one revoked. To illustrate, assume a worst case 
scenario that each wallet item requires its own certificate 
from each wallet item (application) vendor. If all of those 
entitlements were stored on a smart card, each vendor 
would have to be contacted to revoke and re-issue in 
the event of a card mishap. Storing the entitlements on 
the server avoids this complex problem and replaces it 
with the simple task of revoking and reissuing the one 
certificate that the wallet issuer has control over, the cer- 
tificate to the network wallet. To the user of the wallet, 
where the contents actually reside may not be apparent. 
The virtual wallet appears to have all of its contents to- 
gether. 

[0086] The actual physical distribution of the contents, 
however, will be determined by what must be available 
off-line, and what can be resident on a server. The Fig- 
ures 10 and 1 1 show some functionality on a smart card 
devoted to off-line (not on the Internet) transactions, and 
a single certificate to access the rest of the virtual wallet 
on the network. 

[0087] Figure 1 0 provides a block diagram represent- 
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ing the contents of a virtual wallet. As shown in Figure 
10 the owner of a virtual wallet may use the wallet to 
hold (contain) credit and debit cards, and related finan- 
cial information. This financial currency includes in the 
present example, VISA® cash 122, VISA® certificates s 
124, VISA® credit card 126, MasterCard® credit card 
128, Mondex credit 130, Mondex certificates 132, Din- 
ers Club credit card 134, MasterCard® SET certificate 
136, VISA® SET certificate 138, Diners SET certificate 
140. The financial currency may further include credits 
from selected vendors for example, Citi Shopping Net- 
work Credits 142 and Gasoline company credits 144. In 
addition, wallet 1 20 may include reward program infor- 
mation, such as frequent flyer miles, 146. 
[0088] In addition to financial currency, the virtual wal- 
let, 120 includes "information" currency relevant to the 
owner. Examples of information currency include a 
phone book 1 48, a calendar and appointment book 1 50, 
identity information 152, to do list 154, calling cards 156, 
personal information 158, personal interests 160 and a 
network wallet identity certificate 162. 
[0089] Figure 11 depicts the physical embodiment of 
the virtual wallet 120 of the present example. As shown 
in Figure 11, the virtual wallet is a hybrid between a 
smart card 1 70 and a wallet server 1 72. Smart card 1 70 
includes VISA® cash 122, VISA® SET certificate 138, 
VISA® certificates 124, VISA® credit card 126, Mondex 
credit 130, Mondex certificates 132 and network wallet 
identity certificate 162. The wallet server 172 includes 
MasterCard® credit card 128, Diners Club credit card 
1 34, MasterCard® SET certificate 1 36, Diners SET cer- 
tificate 140, phone book 148, a calendar and appoint- 
ment book 150, identity information 152, to do list 154, 
calling cards 156, personal information 158, Citi Shop- 
ping Network Credits 142, gasoline company credits 
144, frequent flyer miles, 146 and personal interests 
160. 

[0090] As depicted schematically in Figure 11, the 
owner of virtual wallet 120 may utilize the smart card 
portion, 170 to complete electronic cash transactions 
180, for example to pay a taxi fare 182. Smart card 170 
may also be utilized in credit card transactions, 184 and 
186. Smart card 170 is also a proxy 188 to the server 
172 or network portion of the wallet through the internet, 
190. A pass through interface allows the user to select 
an item (information or financial currency) from applica- 
tions on the wallet server as if they were on the smart 
card. Since the applications and currency reside on the 
server, the number is not constrained by the size of the 
smart card's memory, and the card is easily replaced in 
the event of a mishap. 

[0091] Additionally functionality is provided by the 
wallet server 172 portion of the virtual wallet 120. The 
wallet server, or the smart card through an interface to 
the wallet server, may communicate through the internet 
to merchant servers 192 for the purchase of goods or 
financial services, or the exchange of information. 
[0092] Features of virtual wallet 120 may be imple- 



mented utilizing a Java Wallet Model and the Java Elec- 
tronic Commerce Framework (JECF). The JECF is a set 
of Java API's for commerce. The JECF defines objects 
for commerce messages and operations. A represent- 
ative schematic is provided in Figure 12. 
[0093] As shown in Figure 12, the JECF includes an 
operations registry, 200; protocol registry 202; user in- 
terface (Ul) registry, 204: instrument registry 206; and 
instrument instances; 208.. The operations registry sup- 
ports operations for example adding or subtracting val- 
ue from a card. The protocol registry allows the frame- 
work to include protocols, like SET, that effects opera- 
tions like payment authorization for a credit card. The 
instrument registry supports financial instruments such 
as stored values cards or credit cards that use an un- 
derlying protocol for communication. An instrument may 
choose among the protocols that support it. The Ul reg- 
istry allows the framework to switch between different 
user interfaces to control the underlying base set of op- 
erations. There is also an encompassing security model 
for communication between objects. 
[0094] The flow of an instruction within JECF is, by 
way of example, as follows. A java commerce message 
(JCM) enters the JECF. The JECF looks up and instan- 
tiates operations (downloading components if neces- 
sary). The JECF looks up a current user interface asso- 
ciated with the operation and displays the user interface. 
The JECF adds operation to the user interface and waits 
for operation completion by the user. A user performs 
an operation, interacting with the user interface. When 
the operation is complete a string response is returned 
which is returned to the caller of the operation. 
[0095] The functionality of the JECF may be utilized 
in virtual wallet 1 20 with other software to perform the 
functions described in the preceding sections. 
[0096] Although the invention has been described 
with reference to these preferred embodiments and fea- 
tures, other similar embodiments and features can 
achieve the same results. Variations and modifications 
of the present invention will be apparent to one skilled 
in the art and the present disclosure is intended to cover 
all such modifications and equivalents. 



Claims 

1. A virtual wallet system comprising a locally residing 
wallet portion, an external server residing wallet 
portion and an interface between the locally resid- 
ing wallet portion and the external server residing 
portion. 

2. The virtual wallet system of claim 1 wherein the wal- 
let includes at least one of the following: payment 
mechanisms; identity authentication mechanisms; 
personal information; and electronic artifacts. 

3. The virtual wallet system of claim 2 wherein the pay- 
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ment mechanisms comprise one or more of the fol- 
lowing: bank account information, credit account in- 
formation, electronic currency, electronic checks 
and debit cards. 

s 

4. The virtual wallet system of claim 2 wherein the 
identity authentication mechanisms comprise per- 
sonal identification information and authentication 
information. 

10 

5. The virtual wallet system of claim 2 wherein person- 
al information comprises one or more of the follow- 
ing: name, home address, work address, home 
phone, work phone, emergency contact informa- 
tion, personal phone numbers and addresses, ap- is 
pointments and reminders, personal preferences 
and interests and biometric information. 

6. The virtual wallet system of claim 5 wherein person- 
al identification information comprises one or more 20 
of the following: name, home address, work ad- 
dress, home phone, work phone, emergency con- 
tact information, and biometric information. 

7. The virtual wallet system of claim 5 wherein authen- 2S 
tication information comprises one or more of the 
following: certificates, access keys and biometric in- 
formation. 

8. The virtual wallet system of claim 2 wherein the 30 
electronic artifacts comprise one or more of the fol- 
lowing: loyalty credits, coupons, pictures, tokens 
and tickets. 

9. A system for electronic commerce utilizing a virtual 3S 
wallet of claim 1 . 
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Network Waflet Identity 
Certificate 



A single certificate on the smart card identifies and 
authenticates the card to the wallet server 

A pass-through interface allows the user to 
select an item from applications on the 
network as if they were on the smart card. 
Since they are actually on the server, the 
number of applications are not constrained by 
the size of a smart card; and the card is 
easily replaced in the event of a mishap. ^ 
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Wallet Server 




The network application 
communicates with the t H y 
merchant server instead 
of the users browser. 
Hence, the user is not 
tied to a given machine 
or browser. 
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